3 matches found
CVE-2022-32370
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getclassroom.php?id=...
CVE-2022-32370
itsourcecode Advanced School Management System v1.0 is vulnerable to SQL Injection via /school/model/getclassroom.php?id=...
CVE-2022-32370
The CVE-2022-32370 entry is corroborated across multiple feeds as a SQL injection flaw in itsourcecode Advanced School Management System v1.0, exploitable via /school/model/get_classroom.php?id=. Root cause: missing input validation on the id parameter leading to SQL statement manipulation. Repor...